1 # Copyright © 2019 Amdocs, Bell Canada
3 # Licensed under the Apache License, Version 2.0 (the "License");
4 # you may not use this file except in compliance with the License.
5 # You may obtain a copy of the License at
7 # http://www.apache.org/licenses/LICENSE-2.0
9 # Unless required by applicable law or agreed to in writing, software
10 # distributed under the License is distributed on an "AS IS" BASIS,
11 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 # See the License for the specific language governing permissions and
13 # limitations under the License.
15 #################################################################
16 # Global configuration overrides.
18 # These overrides will affect all helm charts (ie. applications)
19 # that are listed below and are 'enabled'.
20 #################################################################
22 # Change to an unused port prefix range to prevent port conflicts
23 # with other instances running within the same k8s cluster
25 nodePortPrefixExt: 304
28 # Install test components
29 # test components are out of the scope of ONAP but allow to have a entire
30 # environment to test the different features of ONAP
31 # Current tests environments provided:
32 # - netbox (needed for CDS IPAM)
33 # - AWX (needed for XXX)
34 # - EJBCA Server (needed for CMPv2 tests)
35 # Today, "contrib" chart that hosting these components must also be enabled
36 # in order to make it work. So `contrib.enabled` must have the same value than
37 # addTestingComponents
38 addTestingComponents: &testing false
41 # Uncomment the following to enable the use of a single docker
42 # repository but ONLY if your repository mirrors all ONAP
43 # docker images. This includes all images from dockerhub and
44 # any other repository that hosts images for ONAP components.
45 #repository: nexus3.onap.org:10001
49 dockerHubRepository: docker.io
52 readinessImage: onap/oom/readiness:3.0.1
55 curlImage: curlimages/curl:7.69.1
57 # logging agent - temporary repo until images migrated to nexus3
58 loggingRepository: docker.elastic.co
60 # dockerHub main repository
61 dockerHubRepository: docker.io
63 # busybox repo and image
64 busyboxRepository: docker.io
65 busyboxImage: busybox:1.30
68 kubectlImage: "bitnami/kubectl:1.15"
74 # {{ template "common.fullname" . }}.{{ template "common.namespace" . }}.svc.{{ .Values.global.clusterName }}
75 clusterName: cluster.local
77 # default mount path root directory referenced
78 # by persistent volumes and log files
80 mountPath: /dockerdata-nfs
81 enableDefaultStorageclass: false
83 storageclassProvisioner: kubernetes.io/no-provisioner
84 volumeReclaimPolicy: Retain
86 # override default resource limit flavor for all charts
89 # flag to enable debugging - application support required
92 # default password complexity
93 # available options: phrase, name, pin, basic, short, medium, long, maximum security
94 # More datails: https://masterpassword.app/masterpassword-algorithm.pdf
95 passwordStrength: long
97 # configuration to set log level to all components (the one that are using
98 # "common.log.level" to set this)
99 # can be overrided per components by setting logConfiguration.logLevelOverride
100 # to the desired value
103 #Global ingress configuration
108 baseurl: "simpledemo.onap.org"
110 # Global Service Mesh configuration
111 # POC Mode, don't use it in production
117 # POC Mode, only for use in development environment
118 # Keep it enabled in production
120 aafAgentImage: onap/aaf/aaf_agent:2.1.20
126 image: onap/org.onap.aaf.certservice.aaf-certservice-client:1.2.0
128 name: aaf-cert-service-client-tls-secret
129 mountPath: /etc/onap/aaf/certservice/certs/
131 # Certificate related
132 cmpv2Organization: "Linux-Foundation"
133 cmpv2OrganizationalUnit: "ONAP"
134 cmpv2Location: "San-Francisco"
135 cmpv2State: "California"
137 # Client configuration related
139 requestURL: "https://aaf-cert-service:8443/v1/certificate/"
140 requestTimeout: "30000"
141 keystorePath: "/etc/onap/aaf/certservice/certs/certServiceClient-keystore.jks"
142 keystorePassword: "secret"
143 truststorePath: "/etc/onap/aaf/certservice/certs/truststore.jks"
144 truststorePassword: "secret"
147 # Set to false if you want to disable TLS for NodePorts. Be aware that this
148 # will loosen your security.
149 # if set this element will force or not tls even if serviceMesh.tls is set.
153 # Currently, centralized logging is not in best shape so it's disabled by
155 centralizedLoggingEnabled: ¢ralizedLogging false
158 # Example of specific for the components where you want to disable TLS only for
160 # if set this element will force or not tls even if global.serviceMesh.tls and
161 # global.tlsEnabled is set otherwise.
165 # Global storage configuration
166 # Set to "-" for default, or with the name of the storage class
167 # Please note that if you use AAF, CDS, SDC, Netbox or Robot, you need a
168 # storageclass with RWX capabilities (or set specific configuration for these
173 # Example of specific for the components which requires RWX:
176 # storageClassOverride: "My_RWX_Storage_Class"
181 # storageClassOverride: "My_RWX_Storage_Class"
183 # cds-blueprints-processor:
185 # storageClassOverride: "My_RWX_Storage_Class"
189 # storageClassOverride: "My_RWX_Storage_Class"
191 #################################################################
192 # Enable/disable and configure helm charts (ie. applications)
193 # to customize the ONAP deployment.
194 #################################################################
202 openStackType: OpenStackProvider
203 openStackName: OpenStack
204 openStackKeyStoneUrl: http://localhost:8181/apidoc/explorer/index.html
205 openStackServiceTenantName: default
206 openStackDomain: default
207 openStackUserName: admin
208 openStackEncryptedPassword: admin
219 # Today, "contrib" chart that hosting these components must also be enabled
220 # in order to make it work. So `contrib.enabled` must have the same value than
221 # addTestingComponents
234 # Today, "logging" chart that perform the central part of logging must also be
235 # enabled in order to make it work. So `logging.enabled` must have the same
236 # value than centralizedLoggingEnabled
238 enabled: *centralizedLogging
252 # openstack configuration
253 openStackRegion: "Yolo"
254 openStackVNFTenantId: "1234"
264 # openStackEncryptedPasswordHere should match the encrypted string used in SO and APPC and overridden per environment
265 openStackEncryptedPasswordHere: "c124921a3a0efbe579782cde8227681e"
281 # necessary to disable liveness probe when setting breakpoints
282 # in debugger so K8s doesn't restart unresponsive container
285 # so server configuration
287 # message router configuration
289 # openstack configuration
290 openStackUserName: "vnf_user"
291 openStackRegion: "RegionOne"
292 openStackKeyStoneUrl: "http://1.2.3.4:5000"
293 openStackServiceTenantName: "service"
294 openStackEncryptedPasswordHere: "c124921a3a0efbe579782cde8227681e"
296 # configure embedded mariadb
299 mariadbRootPassword: password